Pa ethereal je jedan vrlo zgodan sniffing alat. Definicija termina sniffovanje:
Citat:
A program and/or device that monitors data traveling over a network. Sniffers can be used both for legitimate network management functions and for stealing information off a network. Unauthorized sniffers can be extremely dangerous to a network's security because they are virtually impossible to detect and can be inserted almost anywhere. This makes them a favorite weapon in the hacker's arsenal. On TCP/IP networks, where they sniff packets, they're often called packet sniffers.
Dakle, ako koristis switcheve na mrezi, mozes sa bilo kog kompa da snifujes. Ako koristis Windows, treba ce ti i
winpcap. Kad sve to instaliras, pokrenes ethereal, ides capture>start, izaberes interface koji koristis, po zelji promenis ostale opcije, dodas filtere ili tako nesto. Obavezno mora da ti bude stiklirano "capture packets in promiscuous mode". Onda kazes ok, snif pocinje, kad hoces da zavrsis kazes stop. Onda ides pod statistics, i tu mozes da pregledas statisticki to sto je snifovano. Tebi ce najvise znaciti "conversations" i "endpoints", da bi video ko pravi najvise traffica.
Hope this helps ;)
I HAD A NIGHTMARE
IT ALL STARTED NORMAL
10101010
10110011
THEN ALL OF A SUDDEN
1100102
GAAAAH
_____________________________
www.princeton.edu/~skrstic
www.niwifi.co.sr